#8037: Specialy crafter microdesc could trigger to flush up to 16MB uninited
heap
allocated memory to media
----------------------------+-----------------------------------------------
Reporter: cypherpunks | Owner:
Type: defect | Status: closed
Priority: normal | Milestone: Tor: 0.2.4.x-final
Component: Tor | Version:
Resolution: invalid | Keywords:
Parent: | Points:
Actualpoints: |
----------------------------+-----------------------------------------------
Comment(by cypherpunks):
Auths could generate such md, of course they could to do more worse things
but it's not good to flush memory to media even if auths decide so. It
would be better to change tor_strndup to memcpy.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8037#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
[email protected]
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs
